eFront is a leading software provider of end-to-end solutions dedicated to the financial industry. eFront’s solutions for cross-asset classes serve more than 800 customers in 48 countries, including companies in the private equity, real estate investment, banking and insurance sectors. Founded in 1999, eFront has offices in New York, Dallas, Montreal, Belgrade, Boston, London, Jersey, Paris (HQ), Bonn, Dubai, Singapore, Hong Kong and Beijing amongst our 23 global locations.
In order to support our constantly growing business, we are looking for a:
Information Security Analyst - Belgrade
Department: DevOps
Position
We are looking for a highly motivated individual to join our Information Security team. The team is responsible for overall security of information systems at efront and their compliance with CIA principles of information security.
Your main responsibilities will be:
- Provide information security expertise to assist with achievement of information systems compliance programs (SOC2 Type 2, ISO27K)
- Provide information security expertise during pre-sales, sales and post-sales activities at eFront
- Propose and implement corporate business processes that improve overall security posture at eFront
- Perform regular security and privacy policy reviews
- Maintain knowledge of constantly changing security and privacy landscape and propose initiatives related to industry changes
- Work with internal and external stake holders on security audits and remediation processes
Essential job functions :
- Responsible for monitoring internal compliance against information security policies and standards by conducting testing and internal control reviews and risk assessments.
- The individual will maintain awareness of external regulations for new or changed requirements within IT and identify industry standards from which base core IT processes (e.g. ISO27001, NIST, SSAE16, etc.) are established.
- This position represents the company’s interest with customers, external and internal auditors and 3 rd party service providers.
- create and maintain operational security measures and reporting including but not limited to OpenVas and Acunetix scanning
- DLP/Content filtering reporting
- Facilitates with internal and external audits within IT, as well as periodic assessments to address specific risks.
Reviews IT audit results with the various IT functions providing observations, recommendations and conclusions as well as assist in identifying and communicating control gaps and evaluating management remediation action plans and related reporting
Required skills and experience :
- Bachelor's degree in Business, with IT audit or compliance experience, or Computer Science, with business and IT Audit/Compliance experience desired
- 1-3 years of experience, IT Audit, Compliance, and/or Technology
- Knowledge of regulatory standards SOC, ISO, privacy shield is a plus.
- Experience with various technologies, including SharePoint, networks, platforms, and applications. Knowledge of IT audit methodologies and control frameworks.
- Knowledge of Linux is a plus
- Familiarity with security scanning and penetration tools (OpenVas, Qualys, Acunetix) is a plus
eFront stands out as a real career booster :
- We are at the crossroads between software and the thriving businesses of Private Equity and Real Estate
- We foster international and cross-functional mobility across our broad office network
- Our culture encourages risk-taking and innovation
- While we are a financially robust and established company, we are still as agile and boiling as a start-up and offer plenty of opportunities to gain responsibilities rapidly
This is a rare opportunity for an ambitious and rising professional to join a rapidly growing and successful company.
Deadline for applications: 06.04.2017.